$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: kbOPgnc4kka1h1oq/HXuvFwWeHwxaQ4Lb+r/h7FvK1k= Subject key identifier: C0:9E:88:D6:F9:11:64:7B:E4:86:F1:A9:33:B5:88:03:6D:B1:A3:D1 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 02B2 Signing time: Sat 05 Jul 2025 02:07:06 +0000 Manifest this update: Sat 05 Jul 2025 02:07:06 +0000 Manifest next update: Sat 12 Jul 2025 02:07:06 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: sA0fXZJkUryHe02JwOh2eTCVjPl9J6bm7OOpNBQ443U=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: JpDBusAldNWd+IJVkNhhqJJDrViCPn/caif2F0IdJAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Jul 5 02:07:06 2025 GMT Not After : Jul 12 02:07:06 2025 GMT Subject: CN=686888ca-fcc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:82:72:5c:c3:9a:06:e9:73:9c:e5:42:f7:b4: ab:f5:81:5f:fb:d2:f7:68:eb:38:41:ee:92:0a:e0: 04:20:e5:6a:5e:bb:06:ad:33:f6:5c:1e:eb:99:bc: 27:36:0f:61:b6:06:fb:64:cf:54:e5:c8:3c:c8:17: 76:95:b6:72:92:77:c2:ee:5b:a7:73:3f:05:35:8b: 57:a7:52:08:01:17:d5:6b:62:68:98:c7:a7:4a:44: 6a:94:7d:a5:03:8e:3b:ba:bc:18:5d:11:d4:ce:be: cc:44:87:dd:59:fb:ae:06:83:9b:d9:cc:7b:93:7a: 97:99:df:93:aa:83:4b:66:47:b9:6a:f9:49:71:05: 05:5c:f5:7a:59:38:96:9e:06:0c:0c:9f:b2:fb:97: 54:7f:a0:e7:25:20:08:c5:88:e7:f4:d8:be:1a:c6: 7c:14:b5:d9:df:13:87:00:87:f8:08:3e:91:01:cf: 24:3e:52:89:47:6b:0d:4e:19:34:63:c8:a5:bf:94: b2:3e:d9:ce:2d:30:2d:d2:09:84:6a:21:eb:40:a8: bd:f6:a7:d7:fb:57:5e:26:11:1e:32:01:61:d1:cf: b0:e1:7b:84:b1:1f:85:0e:0c:80:6e:72:a8:e0:6b: cc:dc:5b:01:8f:33:e6:4c:08:c1:8c:0c:a8:79:c2: 81:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:9E:88:D6:F9:11:64:7B:E4:86:F1:A9:33:B5:88:03:6D:B1:A3:D1 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c5:0f:af:1d:f2:b5:2c:a6:da:b5:77:02:7b:53:eb:dc:54: 21:f5:28:08:56:8c:1b:b3:02:e8:aa:ad:8d:98:9b:27:72:d1: 5e:7d:a2:a7:09:6c:62:e7:b8:6c:71:2f:7d:d6:0f:67:f7:5a: 5e:48:6c:6d:9a:a4:5c:d5:74:2c:ef:a5:1f:03:98:00:95:e5: 18:c8:d2:b3:02:72:de:1f:ed:31:ad:a3:88:b9:b6:0f:a6:9c: ab:2d:ee:31:bb:86:60:46:a3:70:07:e1:80:2c:7b:de:7f:68: 8a:75:19:7e:30:76:29:cd:41:79:a9:de:ed:e8:b4:96:27:2e: ae:51:35:87:82:86:6d:18:b1:ee:b0:a3:8b:6f:a1:38:16:32: 3a:89:f1:bc:30:66:c9:08:88:3d:e7:79:48:31:49:51:16:64: 3f:fe:e1:f7:e6:26:29:88:c2:99:ed:91:29:c4:75:f2:83:08: e5:d0:b7:73:81:a7:37:76:61:eb:b5:93:b5:da:d9:f6:b6:d5: 6c:97:e6:cd:93:55:af:de:51:b3:e3:05:44:bf:b6:2c:0a:7a: 33:f0:84:51:ff:35:2a:67:e0:3c:a9:04:b2:b3:da:dd:82:ee: ff:30:41:44:a4:26:61:a8:81:2c:c5:f8:2c:23:df:58:b9:1a: ed:1b:73:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwNzA1MDIwNzA2WhcNMjUwNzEyMDIwNzA2WjAYMRYwFAYD VQQDEw02ODY4ODhjYS1mY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4JyXMOaBulznOVC97Sr9YFf+9L3aOs4Qe6SCuAEIOVqXrsGrTP2XB7rmbwn Ng9htgb7ZM9U5cg8yBd2lbZyknfC7luncz8FNYtXp1IIARfVa2JomMenSkRqlH2l A447urwYXRHUzr7MRIfdWfuuBoOb2cx7k3qXmd+TqoNLZke5avlJcQUFXPV6WTiW ngYMDJ+y+5dUf6DnJSAIxYjn9Ni+GsZ8FLXZ3xOHAIf4CD6RAc8kPlKJR2sNThk0 Y8ilv5SyPtnOLTAt0gmEaiHrQKi99qfX+1deJhEeMgFh0c+w4XuEsR+FDgyAbnKo 4GvM3FsBjzPmTAjBjAyoecKBvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCeiNb5 EWR75IbxqTO1iANtsaPRMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZxQ+vHfK1LKbatXcCe1Pr3FQh9SgIVowbswLoqq2NmJsnctFefaKn CWxi57hscS991g9n91peSGxtmqRc1XQs76UfA5gAleUYyNKzAnLeH+0xraOIubYP ppyrLe4xu4ZgRqNwB+GALHvef2iKdRl+MHYpzUF5qd7t6LSWJy6uUTWHgoZtGLHu sKOLb6E4FjI6ifG8MGbJCIg953lIMUlRFmQ//uH35iYpiMKZ7ZEpxHXygwjl0Ldz gac3dmHrtZO12tn2ttVsl+bNk1Wv3lGz4wVEv7YsCnoz8IRR/zUqZ+A8qQSys9rd gu7/MEFEpCZhqIEsxfgsI99YuRrtG3PG -----END CERTIFICATE-----Generated at Sat Jul 5 05:32:32 2025 by rpki-client